exploitDog

CVE-2011-1049

Опубликовано: 21 фев. 2011

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Buffer overflow in the Mach-O input file loader in Hex-Rays IDA Pro 5.7 and 6.0 allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Macho-O file.

Ссылки

http://osvdb.org/70846
http://secunia.com/advisories/43190
Vendor Advisory
http://www.vupen.com/english/advisories/2011/0357
Vendor Advisory
https://www.hex-rays.com/vulnfix.shtml
http://osvdb.org/70846
http://secunia.com/advisories/43190
Vendor Advisory
http://www.vupen.com/english/advisories/2011/0357
Vendor Advisory
https://www.hex-rays.com/vulnfix.shtml

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hex-rays:ida:5.7:*:pro:*:*:*:*:*

cpe:2.3:a:hex-rays:ida:6.0:*:pro:*:*:*:*:*

EPSS

Процентиль: 66%

0.00517

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-j622-gh32-g6wm

github

больше 3 лет назад

Buffer overflow in the Mach-O input file loader in Hex-Rays IDA Pro 5.7 and 6.0 allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Macho-O file.

EPSS

Процентиль: 66%

0.00517

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-119